Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    9d31fcc2f5ca7ba6128dce492b2a5e57a5e64800ce7a8678b50d5d798bea3c15

  • Size

    188KB

  • Sample

    221012-smy4aahaa2

  • MD5

    6f9536b102360206740d2f0feb3ee1ab

  • SHA1

    6dec0adb46d54e6f7a6c1bce158c9235f2188028

  • SHA256

    9d31fcc2f5ca7ba6128dce492b2a5e57a5e64800ce7a8678b50d5d798bea3c15

  • SHA512

    8792cb3b664089084d8a0a47d3905334bdbbdbf591dee38a824601273c18a0c4c3b162a4ffd0ae014719291e0a7b84b60c08b0d069da87ccb1a849a502150849

  • SSDEEP

    3072:DkfYM5ASFNYsY5uXHs9xmcqAQaLioyH/Tb9s33pn:QdASFNvYA3obLPyH+

Score
6/10

Malware Config

Targets

    • Target

      9d31fcc2f5ca7ba6128dce492b2a5e57a5e64800ce7a8678b50d5d798bea3c15

    • Size

      188KB

    • MD5

      6f9536b102360206740d2f0feb3ee1ab

    • SHA1

      6dec0adb46d54e6f7a6c1bce158c9235f2188028

    • SHA256

      9d31fcc2f5ca7ba6128dce492b2a5e57a5e64800ce7a8678b50d5d798bea3c15

    • SHA512

      8792cb3b664089084d8a0a47d3905334bdbbdbf591dee38a824601273c18a0c4c3b162a4ffd0ae014719291e0a7b84b60c08b0d069da87ccb1a849a502150849

    • SSDEEP

      3072:DkfYM5ASFNYsY5uXHs9xmcqAQaLioyH/Tb9s33pn:QdASFNvYA3obLPyH+

    Score
    6/10
    • Adds Run key to start application

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks